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DETAILED ACTION 

This action is responsive to the response to the restriction requiremnt filed on October 
20,2005. In response to the restriction requirement, Group I was elected. Upon further 
determination, the restriction is withdrawn and all claims are considered. Claims 1-50 are 
pending. Claims 1-50 represent a method for accessing resources on a private network. 

Claim Rejections - 35 USC § 101 
1. 35 U S C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of matter, or 
any new and useful improvement thereof, may obtain a patent therefor, subject to the conditions and 
requirements of this title. 

Claims 34-50 are rejected under 35 U.S.C. 101 because the claimed invention is directed 
to non-statutory subject matter. The computer readable medium in claims 34 and 44 is explained 
in the specification as including a carrier wave. A carrier wave is not a tangible medium and is 
therefor non-statutory. The computer readable medium must be recordable for it to satisfy the 
requirements of statutory subject matter. 



Claim Rejections - 35 USC § 102 

(b) the invention was patented or described in a printed publication in this or a foreign country or in public use or on 
sale in this country, more than one year prior to the date of application for patent in the United States. 

2. Claims 1-50 rejected under 35 U.S.C. 102(b) as being anticipated by Coley et al. US 
Patent No. 5,826,014. Coley teaches the invention as claimed including a firewall system for 
protecting network elements connected to a public network (see abstract). 
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As per claims 1, 32, 33, 34, 39, and 43 Coley et al teaches a method, system and 
computer readable medium for accessing resources on a private network via an intermediary 
server said method comprising: 

(a) receiving a login request from a user for access to the intermediary server (column 10, 
lines 1-67; column 11, lines 1-31); 

(b) authenticating the user (column 9, lines 47-60); 

(c) subsequently receiving a resource request from the user at the intermediary server, the 
resource request requesting a particular operation with respect to a resource from the private 
network (column 1 1, lines 8-40; colun 54, lines 54-67); 

(d) obtaining access privileges for the user (column 9, lines 1-32); 

(e) determining whether the access privileges for the user permit the user to perform the 
particular operation at the private network (column 9, lines 1-32), and 

(f) preventing performance of the particular operation at the private network such that a 
response to the resource request is not had when said determining (e) determines that the access 
privileges for the user do not permit the user to perform the particular operation at the private 
network (column 1 1, lines 8-40). 

As per claims 19 and 44, Coley et al. teaches a method for providing remote access to a 
private network via an intermediary server, said method comprising: 

(a) receiving a login request from a remote user for access to the intermediary server 
(column 10, line 1-67; column 11, lines 1-31); 
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(b) determining whether the remote user is permitted access to the intermediary server 
(column 9, lines 47-60); 

(c) granting the remote user access to the intermediary server when said determining (b) 
determines that the remote user is permitted access, the granted access also carries access 
privileges to predetermined portions of the private network (column 11, lines 8-40, 54-67); 

(d) subsequently receiving a resource request from the remote user at the intermediary 
server, the resource request requesting a particular resource (column 9, lines 1-32) 

(e) determining whether the resource request from the remote user is permitted by the 
access privileges (column 9, 1-32) 

(f) supplying the particular resource to the remote user when said determining (e) 
determines that the resource request from the user is permitted(column 9, lines 1-32); and 

(g) denying the remote user from access to the particular resource when said determining 
(e) determines that the resource request from the user is not permitted (column 1 1, lines 8-40). 

As per claims 2 and 35, Coley et al. teaches a method as recited in claim 1 , wherein the 
particular operation is one of a resource request, a file access operation or an email operation 
(column 8, lines 26-41) 

As per claim 3 and 36, Coley et al. teaches a method as recited in claim 1 , wherein said 
authenticating (b) determines whether the user is authenticated based on an external 
authentication server (column 8, lines 42-61). 
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As per claim 4, Coley et al. teaches a method as recited in claim 3, wherein the external 
authentication server is within the private network (column 8, lines 42-54). 

As per claims 5 and 37, Coley et al. teaches a method as recited in claim 1, wherein the 
intermediary server stores the access privileges for a plurality of users (column 9, lines 1-32; 
column 1 1, lines 8-40). 

As per claim 6, Coley et al. teaches a method as recited in claim 1 , wherein the 
intermediary server stores an authentication identifier for each of a plurality of users, the 
authentication identifier identifies an external authentication server to be used to perform said 
authenticating (b) (column 10, lines 36-55; column 1 1, lines 8-40). 

As per claim 7, Coley et al. teaches a method as recited in claim 6, wherein the external 
authentication server is within the private network (column 10, lines 36-55; column 11, lines 8- 
40). 

As per claim 8, Coley et al. teaches a method as recited in claim 7, wherein the 
authentication identifier comprises a network address for the external authentication server 
(column 9, lines 34-46). 
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As per claim 9, Coley et al. teaches a method as recited in claim 1, wherein the resource 
request is from a client-side application operating on a client machine (column 8, lines 29-41; 
column 9, lines 1-32). 

As per claim 10, Coley et al. teaches a method as recited in claim 9, wherein the client 
side application is selected from the group consisting of a web browser, an email application or a 
file access application column 8, lines 26-41). 

As per claim 1 1, Coley et al. teaches a method as recited in claim 1, wherein the user is a 
remote user (column 8, lines 29-41; column 9, lines 1-32). 

As per claims 12 and 38, Coley et al. teaches a method as recited in claim 1, wherein the 
resource request is from a client-side application operating on a remote client machine (column 
8, lines 29-41; column 9, lines 1-32). 

As per claim 13, Coley et al. teaches a method as recited in claim 1, wherein the private 
network is an 25 intranet or other network (column 8, lines 29-41; column 9, lines 1-32). 

As per claim 14, Coley et al. teaches a method as recited in claim 1 , wherein the resource 
request is from a network browser (column 8, lines 29-41; column 9, lines 1-32). 



Application/Control Number: 10/060,792 Page 7 

Art Unit: 2157 

As per claim 15, Coley et al. teaches a method as recited in claim 1 , wherein said method 
further comprises: (g) performing the particular operation at the private network to determine a 
response to the resource request when said determining (e) (column 8, lines 29-41; column 9, 
lines 1-32). 

As per claims 16 and 40, Coley et al. teaches a method as recited in claims 1 and 34 , 
wherein the user has an Internet Protocol (IP) address associated therewith, and wherein said 
determining (e) comprises: 

(el) determining whether the access privileges for the user permit the user to perform the 
particular operation at the private network; and 

(e2) determining whether the IP address associated with the user is authorized. 

As per claims 17 and 41, Coley et al. teaches a method as recited in claim 16 and 40, 
wherein said determining (e) further comprises: (e3) determining whether time-of-day 
restrictions are satisfied (column 9, lines 61-67; column 10, lines 1-26). 

As per claims 18 and 42, Coley et al. teaches a method as recited in claims 17 and 40, 
wherein the access privileges comprise permitted operations, authorized IP addresses, and time- 
of-day restrictions for a plurality of users (column 9, lines 34-67; column 10, line 1-26; column 
11, lines 8-53). 
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As per claims 20 and 45, Coley et al. teaches a method as recited in claim 19, wherein 
said supplying (f) comprises: (fl) retrieving the particular resource from a content server; (£2) 
modifying at least one URL within the particular resource, and (f3) sending the modified 
resource to the remote user (column 11, lines 1-40). 

As per claims 21 and 46, Coley et al. teaches a method as recited in claim 19, wherein 
said supplying (f) comprises: (fl) modifying the response so that links within the response point 
to the intermediate server; and (£2) sending the modified resource to the remote user (column 8, 
lines 64-67; column 9, lines 1-31; column 10, lines 1-26; column 12, lines 6-24). 

As per claims 22 and 47, Coley et al. teaches a method as recited in claim 19, wherein 
said supplying (f) comprises: (fl) determining a host name for a remote server hosting the 
particular resource being requested, (f2) sending a request for the particular resource to the 
remote server based on the determined host name; and (f3) receiving, at the intermediary server, 
a response to the request from the remote server (column 12, lines 6-24; column 13, lines 1 1-20). 

As per claims 23 and 48, Coley et al. teaches a method as recited in claim 22, wherein 
said supplying (f) comprises: (f4) modifying the response so that links within the response point 
to 30 the intermediate server, and (f5) sending the modified resource to the remote user (column 
12, lines 6-24; column 13, lines 1 1-20). 
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As per claim 24 and 28, Coley et al. teaches a method as recited in claims 19 and 23, 
wherein the private network is an intranet (column 8, lines 29-41; column 9, lines 1-32). 

As per claims 25 and 29, Coley et al. teaches a method as recited in claims 19 and 23, 
wherein the resource request is from a network browser (column 8, lines 29-41; column 9, lines 
1-32). 

As per claims 26 and 49, Coley et al. teaches a method as recited in claims 23 and 34, 
wherein the resource request is from a client-side application operating on a remote client 
machine (column 8, lines 29-41; column 9, lines 1-32). 

As per claims 27, 30 and 50, Coley et al. teaches a method as recited in claims 25, 19, 
and 44 wherein the client-side application is selected from the group consisting of: a web 
browser, an email application or a file access application (column 8, lines 29-41; column 9, lines 
1-32). 

As per claim 31, Coley et al. teaches an intermediary server system, comprising: a web 
server that receives requests for resources from client machines via a network (column 7, lines 1- 

21); 

a protocol handler operatively connected to said web server, said protocol handler 
receives the requests for resources, modifies the requests to be directed to appropriate remote 
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servers via the private network, and forwards the modified requests for resources to the 
appropriate remote servers(column 7, lines 35-62); and 

a content transformer operatively connected to said protocol handler, said content 
transformer receives the resources supplied by the appropriate remote servers in response to the 
modified requests and modifies the resources such that at least certain links contained therein are 
modified to be directed to said intermediary server system instead of remote servers (column 7, 
lines 35-62; column 8, lines 63-67; column 9, lines 1-31). 

Conclusion 

3. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

4. Grantges Jr. et al. US Patent No. 6,5 10,464 

5. Win et al. US Patent No. 6,182142 

6. Allavarpu US Patent No. 6,950,935 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Uzma Alam whose telephone number is (571) 272-3995. The 
examiner can normally be reached on Monday-Tuesday 5:30 AM - 2:00 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ario Etienne can be reached on (571) 272-4001. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). 

Uzma Alam 
Ua 

December 14, 2005 ^ 




